Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

OpenStack Dashboard Login Panel - Detect

By kannthu

Vidoc logoVidoc Module

What is the "OpenStack Dashboard Login Panel - Detect?"

The "OpenStack Dashboard Login Panel - Detect" module is designed to detect the presence of the OpenStack Dashboard login panel. OpenStack Dashboard, also known as Horizon, is a web-based interface for managing OpenStack cloud environments. This module specifically focuses on detecting the login panel, which allows users to authenticate and access the OpenStack Dashboard.

This module is categorized as informative, meaning it provides information about the presence of the login panel but does not indicate any vulnerabilities or misconfigurations.


The impact of this module is purely informational. It helps users identify whether the OpenStack Dashboard login panel is present or not. No actions are taken beyond reporting the detection.

How the module works?

The "OpenStack Dashboard Login Panel - Detect" module works by sending HTTP requests to specific paths associated with the login panel. It checks for two matching conditions:

    - The response body of the HTTP request should contain the HTML title tag "<title>Login - OpenStack Dashboard</title>", indicating the presence of the login panel. - The HTTP response status code should be 200, indicating a successful request.

If both conditions are met, the module reports the detection of the OpenStack Dashboard login panel.

Here is an example of an HTTP request sent by the module:

GET /dashboard/auth/login/ HTTP/1.1

The module sends this request to the "/dashboard/auth/login/" path, which is one of the paths associated with the OpenStack Dashboard login panel. It expects a response with a status code of 200 and the HTML title tag mentioned earlier.

Module preview

Concurrent Requests (1)
1. HTTP Request template
Matching conditions
word: <title>Login - OpenStack Dashboard</titl...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability